MCP Hub
Back to servers

lintbase-mcp

Real-time Firestore schema context for AI coding agents. Stop hallucinating field names.

Registry
AI & MLAPIs & ServicesDatabasesDevelopment Tools
Stars
1
Updated
Feb 28, 2026
View Source
Claim this server

Quick Install

npx -y lintbase-mcp

LintBase

ESLint for your Firestore database — catch security vulnerabilities, cost leaks, schema drift, and performance issues before they become expensive production problems.

npx lintbase scan firestore --key ./service-account.json

npm version npm downloads License: MIT

Why LintBase?

Your code has ESLint. Your Firestore doesn't have anything.

LintBase scans your database and surfaces issues that are invisible until they show up as an outage or a surprise bill:

  • 🔒 Security — documents with no auth rules, exposed PII, unvalidated writes
  • 💸 Cost — unbounded queries, missing indexes, collections that cost $200/mo for nothing
  • 📐 Schema drift — fields that changed types, missing required fields, inconsistent structure
  • Performance — deeply nested data, missing pagination, hot document patterns

Quick Start

1. Get a service account key

Firebase Console → Project Settings → Service Accounts → Generate new private key

Save the JSON file. Never commit it to git.

2. Run a scan

npx lintbase scan firestore --key ./service-account.json

You'll see a full report in your terminal:

 LintBase — Firestore Scan
 ─────────────────────────────────────────────
 Collections scanned:  12
 Documents sampled:    847
 Issues found:         23  (4 errors · 11 warnings · 8 infos)
 Risk score:           67 / 100  [HIGH]

 ERRORS
 ✖  users         no-auth-check        Documents readable without authentication
 ✖  orders        missing-index        Query on `status` + `createdAt` has no composite index
 ✖  debug_logs    large-collection     Collection has 2.4M docs — estimated $340/mo in reads

 WARNINGS
 ⚠  products      schema-drift         Field `price` found as both Number and String
 ⚠  sessions      ttl-missing          No expiry field — stale docs accumulate indefinitely
 ...

3. Save to your dashboard (optional)

Track your database health over time at lintbase.com:

npx lintbase scan firestore \
  --key ./service-account.json \
  --save https://www.lintbase.com \
  --token <your-api-token>

Get your token at lintbase.com/dashboard/settings — free to start.

🤖 AI Agent Integration (MCP)

Using Cursor, Claude Desktop, or Windsurf? Install lintbase-mcp to give your AI agent real-time Firestore schema context — so it stops hallucinating field names.

Add to .cursor/mcp.json:

{
  "mcpServers": {
    "lintbase": {
      "command": "npx",
      "args": ["-y", "lintbase-mcp"]
    }
  }
}

Now when you ask your AI "add a field to users", it will check your real schema first before writing a line of code.

Full setup guide & tools reference

What it catches

🔒 Security

RuleWhat it detects
no-auth-checkCollections readable/writable without auth
exposed-piiEmail, phone, SSN fields without encryption markers
world-readableDocuments with overly permissive security rules

💸 Cost

RuleWhat it detects
large-collectionCollections with 100k+ docs and high read cost
unbounded-queryQueries without limit() that scan entire collections
missing-indexFilter combinations that fall back to full collection scans
debug-collectionCollections that look like temporary data that was never cleaned up

📐 Schema Drift

RuleWhat it detects
type-inconsistencyField stored as different types across documents
missing-required-fieldField present in 90%+ of docs but absent in some
nullable-idReference fields that are sometimes null

⚡ Performance

RuleWhat it detects
deep-nestingDocument fields nested > 3 levels deep
large-documentDocuments approaching the 1MB Firestore limit
hot-documentSingle document updated by many users simultaneously
no-paginationCollections without a standard pagination field

Options

lintbase scan firestore [options]

Options:
  --key <path>      Path to Firebase service account JSON      [required]
  --limit <n>       Max documents to sample per collection     [default: 100]
  --save <url>      Dashboard URL to save results
  --token <token>   API token for dashboard (from lintbase.com)
  --collections     Comma-separated list of collections to scan
  -h, --help        Show help

Dashboard

The CLI is free forever. The dashboard adds:

  • Trend analysis — is your risk score improving or getting worse over time?
  • 90-day history — compare any two scans side by side
  • Issue detail — click any issue for full context, affected documents, and fix suggestion
  • Team visibility — share scan results without giving DB access

Free: 7 scans · Pro: $39/month for unlimited history, exports, and alerts

Security

  • Your service account key never leaves your machine — it is only read locally
  • Document sampling is hard-capped at --limit (default 100) to prevent accidental read costs
  • The --save flag only sends the scan summary and issue list — never raw document data

License

MIT © Mamadou Dia

Reviews

No reviews yet

Sign in to write a review